A high-severity integer overflow in the Linux kernel's batman-adv module poses a risk of out-of-bounds memory read and system compromise.

The batadv_iv_ogm_send_to_if function suffers from an integer overflow due to a type mismatch between size checks (int) and the variable buff_pos (s16), allowing out-of-bounds reads.

This vulnerability could be exploited to leak sensitive kernel memory or cause a denial of service. The CVSS score of 8.8 reflects the significant risk to systems utilizing the batman-adv routing protocol.

Immediate Action: Upgrade to a kernel version that includes the fix, such as Debian trixie (6.12.90-2), forky (7.0.9-1), sid (7.0.10-1), or upstream commit 0799e5943611006b346b8813c7daf7dd5aa26bfd.

Proactive Monitoring: Monitor network traffic and system logs for unusual behavior related to the batman-adv protocol.

Compensating Controls: Isolate networks running batman-adv to prevent untrusted traffic from interacting with the vulnerable module.

Public Exploit Available: false

Administrators of mesh networks utilizing batman-adv should prioritize updating their kernel to the versions specified above. This is essential to prevent potential information disclosure and system instability.